David_Peters_19
Aug 13, 2010Nimbostratus
Creating a TCP .net iRule to reject IP
Hello All,
I am tring to block IPs that are not on a "White List" and log the rejections.
Because this is an application using .net and TCP I can not use the HTTP profile. I have tried to modify code that i found on this site and
can not find any other information on this. Could some point me in the correct direction.
I have included what I am trying to do.
Blocks all ip requests that are not on the data group list "IPs", and logs rejects
when Client_Access {
if {[matchclass [IP::client_addr] equals $::IPsTest]}{
} else {
log local0.info "WirelessCDL: Client Rejected IP:[IP::client_addr]"
discard
}
}
Thanks,
David